Unfortunately, AFAIK there has been very little if any movement on the new security framework for Turbine as of late. This is due to a lack of people to work on it. Plus there are still some disagreements on how to go about designing the security service itself. Current thoughts are to make all the interfaces empty and allow individuals to implement there own security system whether it be JAAS, realm based, LDAP, classic Turbine, etc.
There has also been a lot of disagreement on naming standards. If you follow the archive in turbine-dev regarding security, you will see what I mean. Scott > -----Original Message----- > From: Josh Hone [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, June 26, 2002 1:30 PM > To: [EMAIL PROTECTED] > Subject: RE: Some Security Issues > > I believe "group" is another general restrictive term in Turbine security > that Jetspeed uses for the moment. However, you should search the > archives > for mention of the new security proposal. This is very informative on how > things are eventually going to be... > > Josh Hone > > > >From: "Wimmer, Matthias" <[EMAIL PROTECTED]> > >Reply-To: "Jetspeed Users List" <[EMAIL PROTECTED]> > >To: "'Jetspeed Users List'" <[EMAIL PROTECTED]> > >Subject: RE: Some Security Issues > >Date: Wed, 26 Jun 2002 14:04:14 -0400 > > > >Pat: > > > >I don't know. The only thing I found is this: > > > >http://jakarta.apache.org/jetspeed/site/portlet_config_common.html#Elemen > t:% > >20security > > > >best regards > >Matt > > > > > > > > > > > > > >-----Original Message----- > >From: Pat Ryan [mailto:[EMAIL PROTECTED]] > >Sent: Wednesday, June 26, 2002 12:58 PM > >To: Jetspeed Users List > >Subject: Re: Some Security Issues > > > > > > > >Is this documented somewhere? Even in a different apache project, like > >Turbine > >perhaps? > > > >Thanks > >Pat > > > > > >"Wimmer, Matthias" wrote: > > > > > > I have some issues about security, could anyone tell me how to do? > > > > > > > > 1. Some users are wanted to be denied from accessing some certain > > > > portlets in jetspeed server. > > > Define an additional permission "seecertainportlets" and define an > > > additional role "privileged". Assign the permission to this role. > Assign > > > this role only to the users that are allowed to see these certain > >portlets. > > > > > > Then you have to specify the required security level for each portlet > in > >the > > > portlet registry. Add this line to the certain portlets: > > > <security role="privileged"/> > > > > > > Have a look at admin.xreg to see how the developers did it. > > > > > > > 2. Besides the roles(admin/user) provided by jetspeed, can I define > a > > > > role myself? > > > Yes. Log in as admin. Click Security -> Security Role Browser -> Add > >Role > > > > > > > 3. how can I use the GROUP according to the present specification of > > > > jetspeed? > > > I have absolutely no idea! I also wonder what this group stuff is all > >about! > > > > > > good luck > > > > > > Matthias Wimmer > > > > > > -- > > > To unsubscribe, e-mail: > ><mailto:[EMAIL PROTECTED]> > > > For additional commands, e-mail: > ><mailto:[EMAIL PROTECTED]> > > > > > >-- > >To unsubscribe, e-mail: > ><mailto:[EMAIL PROTECTED]> > >For additional commands, e-mail: > ><mailto:[EMAIL PROTECTED]> > > > >-- > >To unsubscribe, e-mail: > ><mailto:[EMAIL PROTECTED]> > >For additional commands, e-mail: > ><mailto:[EMAIL PROTECTED]> > > > > > > > _________________________________________________________________ > Get your FREE download of MSN Explorer at > http://explorer.msn.com/intl.asp. > > > -- > To unsubscribe, e-mail: <mailto:jetspeed-user- > [EMAIL PROTECTED]> > For additional commands, e-mail: <mailto:jetspeed-user- > [EMAIL PROTECTED]>
